Solved

ISA and USB ADSL Modems

Posted on 2006-10-29
3
361 Views
Last Modified: 2013-11-16
Hi everyone,
Some time ago I installed a small business server2003 with ISA 2000 for a client. I configured the USB ADSL modem to connect to the net and set up packet filtering according to Microsofts recomendations. The small business server only had one network card serving the internal network. All the clients on the network, as well as the small business server ran F-secure client security (which also has it's own client firewall). I hadn't experienced any problems with the installation except spam from thier external emails and one virus infestation which wa quickly retified. Although a router would have been preferable for the installation, my question is was the installation I've outlined above wrong?
my thoughts on the ISA server was that it handled the web access and therefore the server was protected behind the firewall.... in this case the sbs and the ISA were on the same server.
Thanks in advance
0
Comment
Question by:Halfhidden
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 125 total points
ID: 17832081
I was be hard-pressed to say it was 'wrong' to install a system this way but I would certainly not install such a configuration for a commercial organisation that had consulted me to give them 'best-advice'. It is arguably true though that using the USB drivers to make the USB device appear as a network interface does work (and obviously successfully).

With now well over 200 ISA installations behind me, I have never used and have no plans to use USB devices as an interface on an ISA server (either as direct or perimeter) but this is personal preference.

I would take the view that if the site were compromised in any way, would the client have grounds against me in court for not following best-practice? The honest answer in my view would be no, best practice is often in the eye of the installer based on industry documentation and experience; the USB device is sold as a network device and you have used it as such. If a secondary question were 'would you have used that configuration as well?' then the answer would also have been ' no, not in a month of Sundays'.

Regards
Keith
0
 

Author Comment

by:Halfhidden
ID: 17840773
Thanks Keith your answer is greatly appreciated.
Regards,
Steff
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 17840994
:)
0

Featured Post

Register Today - IoT Current and Future Threats

Are you prepared to protect your organization from current and future IoT Threats?  Join our Wi-Fi expert in episode three of our webinar series for a look at the current state of Wi-Fi IoT and what may lie ahead. Register for our live webinar on April 20th at 9 am PDT!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Windows Firewall - Rule created ports still not opemn 5 79
windows 10 being blocked by AVG 3 76
Sonicwall Email los and Alerts 1 66
Logging pfSense on Kiwi 4 77
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question